$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/650/BNyfAEvEe7cDawG7pN8iVIYuepo.roa File: BNyfAEvEe7cDawG7pN8iVIYuepo.roa (raw, json) Hash identifier: o2enQAfOCbqwh97elgU7lplFRkWY6YX1sZbDKT/x0bE= Subject key identifier: 04:DC:9F:00:4B:C4:7B:B7:03:6B:01:BB:A4:DF:22:54:86:2E:7A:9A Certificate issuer: /CN=0E4E32227E13122FE80340BF3AED3D793D26B457 Certificate serial: 21 Authority key identifier: 0E:4E:32:22:7E:13:12:2F:E8:03:40:BF:3A:ED:3D:79:3D:26:B4:57 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Dk4yIn4TEi_oA0C_Ou09eT0mtFc.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/650/BNyfAEvEe7cDawG7pN8iVIYuepo.roa Signing time: Tue 31 Mar 2026 08:44:14 +0000 ROA not before: Tue 31 Mar 2026 08:44:14 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 17936 IP address blocks: 125.2.208.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/650/Dk4yIn4TEi_oA0C_Ou09eT0mtFc.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/650/Dk4yIn4TEi_oA0C_Ou09eT0mtFc.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Dk4yIn4TEi_oA0C_Ou09eT0mtFc.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33 (0x21) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E4E32227E13122FE80340BF3AED3D793D26B457 Validity Not Before: Mar 31 08:44:14 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=04DC9F004BC47BB7036B01BBA4DF2254862E7A9A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:69:6f:c5:7b:e0:03:e9:d1:7e:7f:1e:87:3f: fa:fd:e1:21:52:24:9c:ce:68:8f:d2:9a:66:3c:11: e7:fd:e4:b2:8d:3c:f9:81:7c:69:1b:41:a3:3f:ee: 94:40:5f:0a:e0:fe:84:be:2c:2c:63:2b:88:42:58: cc:f3:1a:d6:ef:47:20:b1:8f:37:a1:47:67:f9:15: 90:62:d8:ea:ee:4d:1e:18:3a:43:3d:2c:e0:c8:c2: 68:de:c0:e6:3c:ff:fc:e0:30:bd:d2:39:04:8e:ce: 23:19:d2:fc:b2:0c:a6:c6:3e:54:38:09:5a:70:69: ae:82:44:34:b6:d1:b8:ff:66:3b:85:85:d2:13:e8: 8a:d0:a5:bc:a6:ff:42:0d:03:e9:29:16:3e:4b:d1: ac:f2:7c:68:1c:bb:41:db:aa:55:af:5c:e7:7f:82: 96:ab:14:54:c1:f9:d1:4d:c3:b6:c0:f4:5c:03:95: 98:5d:e3:db:4f:60:62:f2:08:d5:6a:fc:41:f0:ab: 37:40:65:ec:e4:8b:f0:c2:4e:af:51:fa:ba:8c:9e: 33:99:df:e6:69:9c:e7:e4:dd:a0:cd:28:68:82:dc: 90:d5:10:b2:dd:0d:d7:55:57:75:56:0a:b7:7b:bb: a1:06:ee:56:98:17:57:a2:2b:2c:b3:d1:7f:d9:3b: 8b:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:DC:9F:00:4B:C4:7B:B7:03:6B:01:BB:A4:DF:22:54:86:2E:7A:9A X509v3 Authority Key Identifier: keyid:0E:4E:32:22:7E:13:12:2F:E8:03:40:BF:3A:ED:3D:79:3D:26:B4:57 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/650/Dk4yIn4TEi_oA0C_Ou09eT0mtFc.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Dk4yIn4TEi_oA0C_Ou09eT0mtFc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/650/BNyfAEvEe7cDawG7pN8iVIYuepo.roa sbgp-ipAddrBlock: critical IPv4: 125.2.208.0/20 Signature Algorithm: sha256WithRSAEncryption a4:1d:36:79:6d:0d:fd:86:11:0b:61:83:80:82:01:ab:d1:cd: a6:7a:6c:54:80:85:39:9f:be:cb:e8:7e:01:ed:62:e6:72:a8: c4:09:a3:c5:f8:b5:e0:55:03:7d:23:bc:02:bc:03:82:16:3b: ca:8f:6a:41:ce:f9:7d:6d:75:eb:31:81:c7:d8:5e:01:04:d1: f6:f0:f7:2e:0a:5d:10:9d:52:d0:91:ba:96:95:0c:af:7f:28: f3:37:e4:4f:3b:9c:54:5b:75:ff:17:40:16:ba:65:9e:fa:8a: d3:6e:fc:d7:3c:4f:af:31:ac:17:24:70:3a:9e:32:67:3d:2e: 76:52:ae:7c:af:4a:23:ef:df:0a:97:4d:53:7c:42:79:19:ec: 21:47:38:b2:a6:9d:c4:9d:24:00:28:bd:fa:48:a8:2c:c3:8e: 66:bb:1c:31:a9:04:67:60:11:4d:9b:99:54:8d:54:a0:ab:5d: d3:48:a6:f8:82:ad:a6:65:41:88:0b:83:8d:d0:b4:dc:89:8c: 31:10:06:a5:5f:6f:aa:42:2c:64:e5:5d:5c:b0:b9:a0:7d:0d: 0d:09:9c:cb:93:2a:f4:17:98:0b:9b:3f:2e:b6:37:47:80:fe: 60:c9:55:ee:d0:3a:84:31:b4:ab:4d:04:ed:4f:92:ed:ba:9c: d0:8f:06:f1 -----BEGIN CERTIFICATE----- MIIEvDCCA6SgAwIBAgIBITANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygwRTRF MzIyMjdFMTMxMjJGRTgwMzQwQkYzQUVEM0Q3OTNEMjZCNDU3MB4XDTI2MDMzMTA4 NDQxNFoXDTI3MDMxNTAxMzAwMlowMzExMC8GA1UEAxMoMDREQzlGMDA0QkM0N0JC NzAzNkIwMUJCQTRERjIyNTQ4NjJFN0E5QTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMRpb8V74APp0X5/Hoc/+v3hIVIknM5oj9KaZjwR5/3kso08+YF8 aRtBoz/ulEBfCuD+hL4sLGMriEJYzPMa1u9HILGPN6FHZ/kVkGLY6u5NHhg6Qz0s 4MjCaN7A5jz//OAwvdI5BI7OIxnS/LIMpsY+VDgJWnBproJENLbRuP9mO4WF0hPo itClvKb/Qg0D6SkWPkvRrPJ8aBy7QduqVa9c53+ClqsUVMH50U3DtsD0XAOVmF3j 209gYvII1Wr8QfCrN0Bl7OSL8MJOr1H6uoyeM5nf5mmc5+TdoM0oaILckNUQst0N 11VXdVYKt3u7oQbuVpgXV6IrLLPRf9k7i1UCAwEAAaOCAdkwggHVMB0GA1UdDgQW BBQE3J8AS8R7twNrAbuk3yJUhi56mjAfBgNVHSMEGDAWgBQOTjIifhMSL+gDQL86 7T15PSa0VzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNjUwL0RrNHlJbjRURWlfb0EwQ19PdTA5ZVQwbXRGYy5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL0RrNHlJbjRURWlfb0EwQ19PdTA5ZVQw bXRGYy5jZXIwDgYDVR0PAQH/BAQDAgeAMHEGCCsGAQUFBwELBGUwYzBhBggrBgEF BQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5MUE3 MzgxMDAwMC82NTAvQk55ZkFFdkVlN2NEYXdHN3BOOGlWSVl1ZXBvLnJvYTAfBggr BgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBH0C0DANBgkqhkiG9w0BAQsFAAOCAQEA pB02eW0N/YYRC2GDgIIBq9HNpnpsVICFOZ++y+h+Ae1i5nKoxAmjxfi14FUDfSO8 ArwDghY7yo9qQc75fW116zGBx9heAQTR9vD3LgpdEJ1S0JG6lpUMr38o8zfkTzuc VFt1/xdAFrplnvqK02781zxPrzGsFyRwOp4yZz0udlKufK9KI+/fCpdNU3xCeRns IUc4sqadxJ0kACi9+kioLMOOZrscMakEZ2ARTZuZVI1UoKtd00im+IKtpmVBiAuD jdC03ImMMRAGpV9vqkIsZOVdXLC5oH0NDQmcy5Mq9BeYC5s/LrY3R4D+YMlV7tA6 hDG0q00E7U+S7bqc0I8G8Q== -----END CERTIFICATE-----Generated at Tue Apr 7 19:47:15 2026 by rpki-client